# This is ssh client systemwide configuration file.  This file provides
# defaults for users, and the values can be changed in per-user configuration
# files or on the command line.

# Configuration data is parsed as follows:
#  1. command line options
#  2. user-specific file
#  3. system-wide file
# Any configuration value is only changed the first time it is set.
# Thus, host-specific definitions should be at the beginning of the
# configuration file, and defaults at the end.

# SSH1 client Site-wide defaults 
# Host *
#   BatchMode                   no
#   Cipher                      idea
#     [could be idea, des, 3des, blowfish, arcfour]
#   Compression                 no
#   CompressionLevel            6
#   ConnectionAttempts
#   EscapeChar                  ~
#     The argument should be a single character, '^' 
#     followed by a letter, or ``none'' to disable 
#     the escape character entirely (making the 
#     connection transparent for  binary data).
#   FallBackToRsh               yes
#   ForwardAgent                yes
#   ForwardX11                  yes
#   GatewayPorts                no ?
#     Remote hosts may connect to locally forwarded ports?
#   GlobalKnownHostsFile        /etc/ssh_known_hosts
#   HostName  [ Specifies the real host name to log into.]
#   IdentityFile                ~/.ssh/identity
#   KeepAlive                   yes
#   KerberosAuthentication      
#   KerberosTgtPassing      
#   LocalForward                25  mailhost:2
#     Example: forward local SMTP connection to mailhost
#   NumberOfPasswordPrompts
#   PasswordAuthentication      yes
#   PasswordPromptHost          yes
#   PasswordPromptLogin         yes
#   Port                        22
#   ProxyCommand
#   RemoteForward                25  mailserv:25
#     Example: forward remote SMTP connection to mailserv
#   RhostsAuthentication        yes
#   RhostsRSAAuthentication     yes
#   RSAAuthentication           yes
#   UseRsh                      no
#   StrictHostKeyChecking       no
#     Add remote keys automatically to .ssh/known_hosts?
#   TISAuthentication
#   UsePrivilegedPort
#   UserKnownHostsFile
#   UseRsh
#   XAuthLocation

## ------ BEGIN secure hosts -----
Host host1 host2 host3 host4
   FallBackToRsh                no
   GatewayPorts                 no
   PasswordPromptHost           yes
   PasswordPromptLogin          yes
   RhostsAuthentication         no
   RhostsRSAAuthentication      yes
   StrictHostKeyChecking        ask
## ------ END secure hosts  -----

## --- Begin all hosts ----
Host *
   RhostsAuthentication         no

## eof